php/LuckyCoinkydink
Archived
1
0
Fork 0
Code Issues Pull Requests Activity

Generating token for comment moderation in a global function now.

Browse Source
This commit is contained in:
mariohommel
2018-03-30 11:04:21 +02:00
parent b0fb8d2d12
commit dcb693ba54
1 changed files with 26 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files
include/functions_comments.inc.php
+26 -8
View File
@@ -1141,16 +1141,9 @@ function serendipity_sendComment($comment_id, $to, $fromName, $fromEmail, $fromU
// Check for using Tokens // Check for using Tokens
if ($serendipity['useCommentTokens']) { if ($serendipity['useCommentTokens']) {
$token = md5(uniqid(rand(),1)); $token = serendipity_generateCToken($comment_id);
$path = $path . "_token_" . $token; $path = $path . "_token_" . $token;
//Delete any comment tokens older than 1 week.
serendipity_db_query("DELETE FROM {$serendipity['dbPrefix']}options
WHERE okey LIKE 'comment_%' AND name < " . (time() - 604800) );
// Issue new comment moderation hash
serendipity_db_query("INSERT INTO {$serendipity['dbPrefix']}options (name, value, okey)
VALUES ('" . time() . "', '" . $token . "', 'comment_" . $comment_id ."')");
} }
$deleteURI = serendipity_rewriteURL(PATH_DELETE . '/'. $path .'/' . $comment_id . '/' . $id . '-' . serendipity_makeFilename($title) . '.html', 'baseURL'); $deleteURI = serendipity_rewriteURL(PATH_DELETE . '/'. $path .'/' . $comment_id . '/' . $id . '-' . serendipity_makeFilename($title) . '.html', 'baseURL');
@@ -1221,3 +1214,28 @@ function serendipity_sendComment($comment_id, $to, $fromName, $fromEmail, $fromU
return serendipity_sendMail($to, $subject, $text, $fromEmail, null, $fromName); return serendipity_sendMail($to, $subject, $text, $fromEmail, null, $fromName);
} }
/**
* Generates a token for E-Mail moderation of comments
* and stores it in the database
*
* @access public
* @param int ID of the comment to generate the token for
* @return string The generated token
*/
function serendipity_generateCToken($cid) {
global $serendipity;
$ctoken = md5(uniqid(rand(),1));
//Delete any comment tokens older than 1 week.
serendipity_db_query("DELETE FROM {$serendipity['dbPrefix']}options
WHERE okey LIKE 'comment_%' AND name < " . (time() - 604800) );
// Issue new comment moderation hash
serendipity_db_query("INSERT INTO {$serendipity['dbPrefix']}options (name, value, okey)
VALUES ('" . time() . "', '" . $ctoken . "', 'comment_" . $cid ."')");
return $ctoken;
}